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SYSTEM FOR MODIFYING COMPUTER RELATED SYSTEMS 
Cross Reference to Related Applications 
This application is a continuation of copending application USSN 08/657,889 filed June 7, 

1996. 

5 Field of the Invention 

This invention relates to computer systems and, more particularly, to modifying computer 
related systems from a remote location. 

Background of the Invention 
Computer related systems contain many modifiable elements including hardware, firmware 
10 and software. Computer hardware includes, but is not limited to, single and multiple processors and 
microprocessors, which are herein individually and collectively referred to as microprocessors, 
peripheral devices, and individual processing units or portions thereof. Computer firmware includes, 
but is not limited to, programmable logic, read only memory, and other components in which control 
instructions such as microcode or program code can be mechanically, optically, electronically, or 
1 5 otherwise embedded. Computer software includes, but is not limited to, any form of information or 
instructions for the computer provided in any media including, but is nol limited to, tape, disk, cards, 
read only memory (ROM), or random access memory (RAM). 

In the past, hardware could only be modified where it was located For example, between a 
personal computer and a peripheral printer, cable connections would have to be changed. Within a 
20 computer itself, various jumper cables would have to be changed or various components removed and 
replaced. For example, to upgrade the speed of a computer system, a microprocessor would have to 
be removed and replaced with a different, higher speed microprocessor. 

Also in the past, since firmware is a combination of hardware with software embedded, it 
was similarly necessary to physically change components in order to modify or upgrade the computer 
25 system. 

In the early days of this ait, computer software originally started out with the same 
limitations as computer hardware and firmware in that physical replacement was required in order to 
modify the computer system; eg., new software on a new media had to be "loaded,** or read from the 
media and written, into the computer. Recently, however, software has been developed which 

30 contains a program which allows only certain features of the software to be utilized until a security 
code activation number or identification is entered which unlocks additional features. 

This system of modifying computer software was a great step forward in that a replacement 
of the software media was not required However, the supporting mechanisms for allowing these 
modifications to be made tended to be expensive, time consuming, error prone, and inefficient. 

35 A computer customer wishing to modify this type of software would have to locate the 

telephone number of the software vendor, generally and unfortunately long after the software is 
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originally obtained and perhaps at a time when the original documentation had been misplaced or 
thrown-out. The customer would then contact the vendor, verbally give the vendor a serial number 
from the user manual or the computer screen, and then describe the configuration of the customer's 
computer system. The customer would then tell the provider what type of modification to the 
5 software was desired and receive a price quote. Upon agreeing to the price, the customer would 
provide credit card information to the provider and then verbally receive an activation code for the 
software. The customer would then have to use the activation code, for example, the customer would 
manually input it into the computer, to cause changes in the software. 

As should be apparent, this software modification system is time consuming and laborious 

1 0 with the possibility of many errors being caused by the requirement for human intervention using 
numerical codes both on the customer's part as well as on the provider's part. 

An additional problem with this system is that the software may be an unauthorized, or 
"bootleg," copy for which the user may not have obtained an appropriate right-to-use authority, or 
license, and for which the provider may not have received payment for the original software. Often, 

1 5 the basic software tends to be much more expensive than an upgrade. 

Although there has been a long felt need to be able to automate the modification of computer 
systems by computer system to computer system contact through various communication networks, it 
has not been heretofore feasible because of the inability to protect both the customer and the provider 
of computer systems from those people who gain unauthorized access to the computer system. Such 

20 people who are unauthorized users of a computer are sometimes called computer "hackers." 

Computer hackers accessing the communications network between the two computer systems would 
be able to obtain access to confidential information of both systems and to obtain sensitive credit 
information from one and sensitive activation codes from the other. In addition, the hacker would be 
able to corrupt both systems by inserting viruses or changing activation codes or by causing or 

25 allowing other unfortuitous events to happen. 

Thus, no system has been previously devised which is capable of controlling the 
modification of computer hardware, firmware, and/or software from a remote location despite the long 
felt need to do so. 

Summary of the Invention 
30 The present invention relates to a system in which a client computer system uses a 

predetermined activation code and includes the ability to access a server computer system through a 
communications network to receive modification commands based upon authentication of the 
activation code to cause modification of the server system. 

The present invention provides an automated system for controlling other systems which 
35 include hardware, firmware, and software. 

The present invention provides a system in which a client system may receive upgrade and 
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othcr information through a communications network from a server system which is able to confirm 
the identity of the client system 

The present invention further provides a mechanism for allowing a server system to 
determine the capability of a customer system and compatibility of upgrades or differing 
5 configurations for use with the customer system. 

The present invention still further provides a mechanism for the elimination of human error 
in the modification of hardware, firmware, and software. 

The present invention further provides a client system which is uniquely identifiable. 

The present invention still further provides a client system which will accept software only 
1 0 from an authorized server system. 

The present invention still further provides a server system which can uniquely identify a 
client system. 

The present invention still further provides a server system which will provide software only 
to an authorized client system. 
1 5 The above and additional advantages of the present system will become apparent to those 

skilled in the art from a reading of the following detailed description when taken in conjunction with 
the accompanying drawings. 

Brief Description of the Drawings 
Fig. 1 is a block diagram of an illustrative system embodying the present invention; 
20 Fig. 2 is a block diagram of a client system that can be embodied in the system shown in Fig. 

I; 

Fig. 3 is a block diagram of a server system that can be embodied in the system shown in 

Fig. 1; 

Fig. 4 is a block diagram of a personal computer that can be embodied in the client system of 
25 Fig. 1 or in the server system of Fig. 1 ; 

Fig. 5 is a partial flow chart of a process that is usable in the client system of Fig. 2; 
Fig. 6 is another partial flow chart which shows the remainder of the process that is partially 
shown in Fig. 5 and that is usable in the client system of Fig. 2; 

Fig. 7 is a partial flow chart of a process that is usable in the server system of Fig. 3 ; and 
30 Fig. 8 is another partial flow chart which shows the remainder of the process that is partially 

shown in Fig. 7 and that is usable in the server system of Fig. 3. 

DflailedDescriptipn 

COMPUTER SYSTEM 100 
Referring now to Fig. 1, therein is shown an overall system 1 00 including client systems 
35 102, 104, and 106 which illustrate a few examples of what are called client systems in what follows. 
There can in fact be any of number of different types of client systems. Client systems 102, 104, 106 
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that arc shown hero include systems which are centered around customer computers such as personal 
assistants, palmtops, laptop computers, personal computers, workstations, mini computers, 
mainframe computers, or massively parallel computers. Fig. 1 illustrates personal computer 102, 
workstation 104 and laptop computer 106, but could just as well include any of the mentioned type 
computers or other computers of that genre. 

The client system 102 is shown connected to a local area network (LAN) 108, an example of 
which is an Ethernet system. LANs including Ethernet systems are well know in the art. 

The client system 104 is shown connected to a wide area network (WAN) 1 10, which is 
exemplified by a Tl or an ISDN connection. Tl and ISDN systems are also well know in the art. 

Client server 106 is shown connected to a plain old telephone system (POTS) 1 12, which is 
exemplified by a twisted pair of wires that are connectable between a network, like network 1 14, and 
a modem in a client system that may be located at a client's or other's site, like client system 106. 

Client systems 102, 104, 106 arc connectable by way of LAN 108, WAN 1 10, POTS 1 1 2 
through communications network 114 with server systems 122, 124 126 by way of LAN 1 16; WAN 
1 1 8; or POTS 120 respectively. 

Communications network 1 14 can be any type of interconnect where it is not necessary for 
the inputs or outputs to be known, just that they be interconncctablc. Network 1 14 can be a strictly 
customer internal network, a standard telephone system, a high data transmission network, among 
other structures such as a cable system or a combination of network systems. In the illustrative 
embodiment it could be the standard telephone system which includes capability to interconnect 
though what has become known in the art as the Internet. 

The communications network 1 14 is connected by LAN 116, WAN 1 18, and POTS 120 
respectively to server systems 122, 124,and 126. In that manner any of client systems 102, 104, 106 
can communicate with any of server systems 122, 124, 126. It should also be noted that the 
communications network 1 14 as well as the various LAN 108, 116; WAN 110,118; and POTS 112, 
120 can be cither wired or wireless systems. Wireless systems could include, but not be limited lo, 
radio frequency and infrared systems. 

The server systems like server systems 122, 124, and 126 are systems typically operated or 
provided by hardware, firmware, and/or software vendors. 

CLIENT SYSTEM 200, 102, 104, 106 
Referring now to Fig. 2, therein is shown a typical client system 200 containing a computer 
202. Client system 200 of Fig. 2 could be substituted as any of client systems 1 02, 1 04 or 1 06 of 
Fig. 1 and is here described as though it is any of those client systems. The computer 202 could be 
any type of computer including a personal assistant, palmtop, laptop, personal, workstation, mini, 
rnainframe, or massively parallel computers, but in the illustrative embodiment described here is a 
personal computer. 
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The computer 202 functions, among other things, as a controller and is opcratively 
connectable to peripheral devices in the client system 200 such as a primer 204, monitor 206, exterior 
memoiy 208, and miscellaneous other devices 210. The peripheral devices in addition could be 
smaller computers with microprocessors which have remote controllable deactivation and activation 

5 features to make them "green" peripheral devices which save power when they are not needed Such 
devices are sometimes called "green" systems in the art meaning when they are in an "off* state to 
save power they are referred to as "red" whereas when they are in an "on" state and using power they 
are referred to as "green" - much in the same sense as a traffic signal used on highways to direct 
automobile traffic. This feature requires direct or indirect microprocessor to microprocessor 

1 0 communication such that the microprocessor in the computer 202 is capable of modifying the 
hardware, firmware, and software in the peripheral devices 204, 206, 208, 210. 

The computer 202 is connectable by a communications interface 212 to the LAN 108, WAN 
1 10 or POTS 1 12, but for purposes of this illustrative description are connected to LAN 108. 

SERVER SYSTEM 300, 122, 124, 126 

1 5 Referring now to Fig. 3, therein is shown the server system 300 having a computer 302 

which could again be any type of computer such as a personal assistant, palmtop, laptop, desktop or 
personal, workstation, mini, mainframe, or massively parallel computer. Server system 300 of Fig. 3 
could be substituted as any server systems 122, 1 24 or 126 of Fig. 1 and is here described as though 
it were any of those server systems and, in particular, in the illustrative embodiment of computer 302 

20 within server system 300 is described as if it were a workstation. 

The computer 302 functions, among other things, as a controller and is operativcly 
connectable to a number of different additional devices and systems such as the database 304, phone 
system 306, or other miscellaneous systems 308. The database 304 could contain such information 
as various serial numbers that exist in systems, available features, configurations, prices, credit 

25 information, and activation codes. The phone system 306 could be a backup system to handle 

unusual situations. The miscellaneous devices 308 could include such systems as tracking systems to 
follow customer purchases and billing. 

The computer 302 could be connected by a communication interface 3 10 to any of the LAN 
1 16, WAN 1 18 or POTS 120, but for purposes of this illustrative description are connected to LAN 

30 116 and thence to the communications network 1 1 4. 

COMPUTER 400 

Referring now to Fig. 4, therein is shown the computer 400 which could be of a type to 
embody computer 202 of Fig. 2 or computer 302 of Fig. 3 as a pan, respectively, of client system 
200, 102, 104, 106 or server system 300, 122, 124, 126. Computer 400 includes therein a 
35 microprocessor 402 that operates as a controller among other things. In particular, microprocessor 
402 can be any type of microprocessor manufactured by a number of companies such as Advanced 
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Micro Devices, Intel Corporation, Cyrix, IBM, Digital Equipment Corporation, and/or Motorola 
among other companies. 

The microprocessor 402 will have programmed in it various items of information regarding 
the microprocessor itself. Typically, the programming of microprocessor 402 is done by the 

5 manufacturer. This programmed information defines a predetermined capability for the computer 
where its predetermined capability is defined by a set of parameters maintained within the computer 
system including several parameters relating to the capabilities of the computer system such as the 
maximum core frequency (i.c which is a measure of the speed or how many megahertz the central 
processing unit of the microprocessor is capable of running at), the (maximum) instruction set, a 

1 0 description of all the features available from the microprocessor, and other information related to the 
(maximum or other) capabilities of the microprocessor and the system in which it operates, as 
appropriate for the specific application, for example, microprocessor 402 may have parameters which 
broadly or narrowly defined the client system or the server system of which the microprocessor is a 
part. The microprocessor 402 has programmed within itself certain parameters such as its full 

1 5 identification including the type of central processing unit it has, the manufacturer, the class of the 
machine, and a unique serial number as well as perhaps still other relevant parameters which have 
meaning within the context of the application^) that are associated with, or in whatever manner use, 
the microprocessor 402. 

The microprocessor 402 could also be provided with a hard coded electronic encryption key. 

20 There arc several types of encryption keys and methods of hard coding them that are well known to 
those skilled in the art. Similarly, as is also known to those skilled in the art, the microprocessor 402 
could be configurable by changing internal software to change the core frequency or to modify yet 
other of its features or, for that matter, the features of the computer 400 of which microprocessor 402 
is illustrated as a part. 

25 In the illustrative embodiment that is being described, the microprocessor 402 is connected 

through additional memory 404 which is shown as RAM 404 but could be other forms of memory to 
serve a specific application. In advanced microprocessors, the additional memory would more likely 
be a 12 cache and, while it may be integral with the microprocessor 402, in the illustrative 
embodiment, it is shown as a separate chip. The L2 cache memory generally tends to be a high speed 

30 RAM memory. 

Similarly, the microprocessor 402 is connected to a ROM 406, which is illustratively shown 
as an electrically erasable read only memory (EPROM) but could be other forms of memory to serve a 
specific alternative application. Again, the ROM 406 can be either separate or integral with the 
microprocessor 402 but, in the illustrative embodiment, it is shown as a separate chip 
35 In our illuslralivc embodiment, the ROM 406 could be a separate component which could be 

programmed, as would be evident to those skilled in the art, with a serial number, feature control 
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information (as will hereinafter be described), a second encryption code, cyclic redundancy check code 
(lo permit multiple checks on the accuracy of the previous code), and error correction code (to correct 
any errors in the previous code). Again as would be evident to those skilled in the art, upon a 
comprehension of the principles of the instant invention and of the description herein, the second 

5 encryption code key could be used to code and decode the serial number and feature information. 

In the illustrative embodiment described here, the microprocessor 402, the RAM 404 and the 
ROM 406 arc all mounted on a card 408, called a "daughter*' card 408 in the art, which is insertablc 
into a system planar (not shown) in the computer 400. 

CLIENT UPGRADE PROCEDURE 500 

1 o Referring now to Figs. S and 6, therein arc shown a process in flow chart format that could 

be embodied in software as a computer program which are typical of the ones resident in the client 
systems 102, 104, 106, 200. The illustrated process is herein referred to as ihe client upgrade 
procedure 500 in that the process is useful for upgrading a client system in order to modify it based on 
payment of an appropriate agreed upon price and being provided an appropriate verification that 

1 5 authenticates the upgrade. The upgrade procedure 500 can be embodied in software. 

The process 500 starts in Fig. 5 at a "upgrade procedure" block 502 that is entered in 
response to an upgrade request, typically from a client, and proceeds to "connect to upgrade server" 
block 504. Then the program proceeds to the "is connection successful?" decision block 506. If no, 
the program proceeds to "retry connection?" decision block 508 and ends at "end" block 512 when a 

20 sufficient number of retries has been unsuccessful attempted or, if yes, iterates through "connect to 
upgrade server" block 504 to retry a connection. 

If the connection is successful out of decision block 506, the program proceeds to the 
"transmit product information for authentication" block 510 and then proceeds to Ihe "is 
authentication successful?" decision block 514. If not successful, the program goes to the "initiate 

25 authentication failure procedure" block 5 1 6 and then through connector blocks 532 and 620 on to 
"restore system to original state" block 618, shown in Fig. 6. 

If the authentication is successful, the program proceeds to the "transmit upgrade request lo 
server" block 5 1 8. The program then proceeds to read "is upgrade request acknowledged?" decision 
block 520. If no, the program goes to the "inform customer that upgrade request is not valid" block 

30 522 and then through connector blocks 532 and 620 on to "restore system to original state" block 
618. 

If the upgrade request is acknowledged, the program proceeds to the "receive upgrade cost 
from server" block 524. Upon receipt of the upgrade cost from the server, the program then goes to 
the "is upgrade cost acceptable?" decision block 526. If the upgrade cost is not acceptable, the 
35 program goes to the "cancel upgrade" block 528 and then through connector blocks 532 and 620 on 
to "restore system to original state" block 618. 
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Generally, in the illustrative embodiment the "initiate authentication failure procedure" 
block 516 and the "inform customer that upgrade request is not valid" block 522 end at the "restore 
system to original state" block 618. While block 618 could restore the original system state and 
proceed to disconnect the connection, it should also be understood that there may be a further program 
5 or subroutine to try to take corrective action or provide additional information. The design of these 
could be within the ability of those having ordinary skill in die ait The "restore system to original 
state" block 61 8 is also the termination point of the "initiate forgery procedure" block 614 and 
eventually through blocks 624 and 628 proceeds to the "terminate connection to update server" block 
630. 

1 0 If the upgrade cost is acceptable, the program will go to the "receive upgrade applet from 

server" block 604 through connector blocks 530 and 602. An "Applet" is a small application 
program which is capable of running on the server system to upgrade hardware, firmware, or software 
in the client system. 

The program procedure 500 then proceeds to the "is upgrade applet valid?" decision block 
1 5 608. If the upgrade applet is not valid, the program proceeds to the "is upgrade applet a forgery?" 
decision block 610. If the applet is not a forgery, the program goes to the "request retransmission 
upgrade applet" block 606 and iterates by reluming to the "receive upgrade applet from server block 
604." If the upgrade applet is a forgery, the program proceeds to the "initiate forgery procedure" 
block 614 and through block 618 eventually proceeds to the "terminate connection to update server" 
20 block 630. 

If the upgrade applet is valid, the program proceeds to the "execute upgrade applet to 
perform requested upgrade" block 612. After the execution, the program proceeds to the "is upgrade 
successful?" decision block 616. 

If the upgrade is successful out of decision block 616, the program proceeds to the "transmit 
25 successful upgrade message to server" block 622, then to the "inform end-user of successful upgrade" 
block 626, and then to the "terminate connection to upgrade server" block 630. 

If the upgrade is unsuccessful out of the decision block 616, the program proceeds to the 
"restore system to original state" block 618 and through blocks 624 and 628 eventually proceeds to 
the "terminate connection to update server" block 630, as is now described. When the system is 
30 restored to me original state, the program proceeds to the "transmit upgrade error message to server" 
block 624 and then to the "inform customer of upgrade error" block 628. From the block 628 the 
program proceeds to the "terminate connection to upgrade server" block 630. 

As part of the successful upgrade, the •terminate connection to upgrade server" block 630 
will cause the program to proceed to the "request system restart" block 632 to cause the system to 
35 reboot to reinitialize the system with the upgraded system parameters. 

The program for the client system upgrade procedure 500 then ends at "end" block 634. 
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SERVER UPGRADE PROCEDURE 700 
Referring now to Figs. 7 and 8, therein arc shown the partial flow charts of the typical 
computer program which is resident in the server systems 122, 124, 126, 300. The illustrated process 
is herein referred to as the server upgrade procedure 700 in that the process is useful for illustrating 
5 what the server system does when a client seeks an upgrade, i. e. helps show the interplay between 
client system and server system as the client seeks an upgrade. 

The server upgrade procedure 700 starts at the "upgrade procedure" block 702 in Fig. 7 in 
response to a client's upgrade request. 

From block 702, the program goes to the "connection from client?" decision block 704. If 
1 0 there is no connection, the program iterates through block 704 and continues to check for the 

connection. If there is connection, the program proceeds to the "receive product information for 
authentication" block 706 and then the program proceeds to the "is product information valid?" 
decision block 708. 

If the product information is not valid, the program proceeds to "request retransmission of 
1 5 product information" block 710 which returns the program to the block 706 for another iteration 
through block 708. 

If the product information is valid, the program proceeds to the "authenticate product 
information" block 712 and then proceeds to the "is product information authenticated?" decision 
block 714. If the product information is not authenticated, the program goes to "transmit 
20 authentication invalid message" block 716 and through connector blocks 728 and 804 on to 

terminate connection to client" block 830 in Fig. 8, which is also referred to herein as "disconnect" 
block 830 in Fig. 8. 

If the product information is authenticated, the program proceeds to the "transmit 
authentication valid message" block 71 8. The program then proceeds to the "receive upgrade 
25 request" block 720 and then proceeds to the "is upgrade request valid?" decision block 722. 

If the upgrade request is invalid, the program proceeds to the "transmit upgrade invalid 
message" block 724 and through connector blocks 728 and 804 on to block 830 in Fig. 8. Again, the 
"disconnect" block 830 may actually be another program. 

If the upgrade request is valid, the program will proceed through connectors 726 and 802 to 
30 the "transmit upgrade valid message" block 806 shown in Fig. 8. 

From the block 806, the program proceeds to the "access upgrade cost database*' block 808 
and then proceeds to the "transmit upgrade cost data" block 810. From block 810 the program waits 
to receive the upgrade cost acknowledge at block 812. 

After the cost data is transmitted, the program goes to the "is upgrade cost acceptable?" 
35 decision block 8 14. If the cost is not accepted, the program will go to the "cancel upgrade request" 
block 8 16 and then to the "disconnect" block 830. Again, the "disconnect" block 830 may be an 
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additional program which contains advertising. 

If the cost is accepted, the program will go to the "transmit upgrade applet" block 818 and 
then to the "is upgrade applet received correctly?" block 820. If the applet is not received correctly, 
the program will go to the "retransmit applet request" block 822 where if there is a retransmission 
5 request it will iterate back to the "transmit upgrade applet" block 8 1 8; else it will go to "disconnect* * 
block 830. 

If the applet is received correctly, the program will proceed to the "receive upgrade status 
message" block 824. 

From the "receive upgrade status message" block 824, the program proceeds to the "is 
1 0 upgrade successful?" decision block 826 in Fig. 8. 

If the upgrade is not successful, the program will go to the "disconnect" block 830 which 
could be a checking program to determine why the upgrade is unsuccessful. 

If the upgrade is successful, the program will proceed to the "initiate upgrade charge 
procedure" block 828 which could be the procedure for billing and handling the receipt of 
1 5 compensation for the upgrade. 

After the "initiate upgrade charge procedure" block 828, the program will proceed to the 
"disconnect" or "terminate connection to the client" block 830. After termination of the connection, 
the program will proceed to the "update product information database" block 832 and then will 
proceed to the "end" block 834. 
20 SOME MORE OF THE INTERACTION BETWEEN 

CLIENT UPGRADE PROCEDURE 500 AND SERVER UPGRADE PROCEDURE 700 
In operation, a customer desirous of modifying the customer's client system could initiate the 
client upgrade procedure 500, which could be embodied in computer 400, as a computer program 
using the flow chart shown in Figs. 5 and 6. Computer 400 in turn can be embodied in computer 202 
25 of client system 200, 102, 104, 106. 

Although different types of modifications of the client system are possible, for example, the 
reduction of capabilities in order to reduce licensing costs (e.g. to reduce the costs to use the software 
that is being modified using the principles of our invention) or just changing a configuration to 
specialize client system 102 in a particular manner, the following discussion is that of an illustrative 
30 embodiment that is related to upgrades. 

When the customer is interested in an upgrade, the customer could initiate the upgrade 
procedure 500 at entry point 502 in any of the client systems 200, 1 02, 1 04, 1 06 to start the program 
embodying the client upgrade procedure 500. The program could then, without further customer 
intervention, look up the necessary connective path through the communications network 1 14 to the 
35 appropriate server system 300, 122, 124, 126. This path connection (504) could be done by having 
the program have the telephone number or the electronic address of the appropriate server system 
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300, 122, 124, 126. 

The program could then check to determine whether the connection is successful in the "is 
connection successful" block 506 and if not successful, it could retry the connection in the "retry 
connection?" decision block 508 a predetermined or an adjustable number of retries and, if 
5 unsuccessful within that number of retries, it will proceed to the procedure end block 512. 

On the other hand, if the connection is successful within the aforementioned number of 
retries, the microprocessor 402 can transmit (510) the encrypted information relating to serial 
numbers, featured capabilities, etc., across the communications network 1 14 to the appropriate server 
system 300, 122, 124, 126 in which the server upgrade procedure 700 of Figs. 7 and 8 can also be 
1 0 embodied in software. Server upgrade process 700 begins to operate at upgrade procedure 702 and 
upon being connected to a client server (704) receives the information at the "receive product 
information for authentication" block 706. 

The server upgrade procedure 700 then checks at the "is product information valid?" decision 
block 708 shown in Fig. 7 to determine if the serial numbers and related information match or arc 
1 5 otherwise valid. It should be noted at this point that this type of information can be used to determine 
if various components have been stolen or are otherwise being used by unauthorized persons. 
Similarly, this information can be used for other purposes such as determining if recalls are required 
due to product liability problems. 

The vendor system then authenticates the product information in the "authenticate product 
20 information" block 712 and the "is product information authenticated?" decision block 71 4. 

If the product is authenticated, the vendor's system transmits a validation message at the 
"transmit authentication valid message" block 718 which is received by the client system 102 at the 
"is authentication successful?" decision block 514 in Fig. 5. 

When the authentication is successful, the client system 102 transmits a signal at the 
25 "transmit upgrade request to server" block 51 8 through the communications network 114 to the server 
system here assume it to be server system 122 to be received at the "receive upgrade request" block 
720 in Fig. 7. The server program then proceeds to determine if the upgrade request is valid at the "is 
upgrade request valid?" decision block 722. At this point, the previously provided message on the 
product information is used to check to make sure that the client system is capable of accepting the 
30 upgrades and performing them. 

If the upgrade request is valid, the server system 122 proceeds to retrieve the cost 
information related to the upgrade at the "retrieve costs from cost database" block 808 in Fig. 8. 

The server system 122 then transmits the cost data at "transmit cost data" block 812 through 
the communications network 1 14. The client system 102 at the "receive upgrade cost from upgrade 
35 server" block 524 in Fig. 5. The customer must then determine whether or not the upgrade cost is 
acceptable (526). If not, the customer can cancel the upgrade (528), but if the cost is acceptable, the 
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ciient system 1 02 will so indicate to the server system 122 to proceed with transmitting the upgrade 
applet at the "transmit upgrade applet" block 818 in Fig. 8. 

The transmitted applet will be received at the client system 102 at the "receive upgrade 
applet from upgrade server" block 604 in Fig. 6. The upgrade applet could then be checked (608) to 

5 assure that it is correct, by any well known error correcting and checking procedure, or to determine 
whether or not it is a forgery (610) and an attempt is being made to harm the client system 1 02 by, for 
example, downloading a virus program. It should be kept in mind that the double encryption 
procedure of the computer 400 permits the encryption of information going in both directions ami 
thus assures the protection of ingoing information as well as outgoing information. 

1 0 The computer 400 then executes the upgrade applet at the "execute upgrade applet to 

perform requested upgrade" block 612. 

Once the upgrade applet is performed, the client system 1 02 then checks to determine if the 
upgrade has been successful at the "is upgrade successful?" decision block 616. 

If the upgrade is not successful, it is necessary to restore the system back to its original state 

15 so that any partial attempts at the upgrade which were incorporated will not later adversely affect a 
successful upgrade. And this is done at the "restore system to original state" block 618. The fact that 
there has been an error in the attempted upgrade will need to be transmitted back to the server system 
1 22 as well as to a customer and this is done, respectively at the "transmit upgrade error message to 
upgrade server" block 624 and the "inform end-user of upgrade error" block 628. 

20 If the upgrade is successful, as determined by a conventional capability checking program, 

the client system 102 will transmit a message at the "transmit successful upgrade message to upgrade 
server" block 622 which will be received at the server system 122 at the M is upgrade successful?" 
block 826 in Fig. 8. 

When the upgrade is successful, the server system 122 will initiate the charging procedures 
25 to cover the cost of the upgrade at the "initiate upgrade charge procedure" 828. It should be evident 
that there are a number of ways that the charge procedure can operate. One example could be the use 
of credit card information transmitted via the double encryption procedure in the computer 400. 

The fact that the various encryption keys can be changed at will and randomly and totally 
without human intervention means that the breakdown of one pair of encryption keys will not 
30 compromise any other set of encryption keys which makes the system extremely secure for the 

transmittal of financial information or programming without the exterior introduction of computer 
viruses. 

As part of the upgrade charge procedure, the server system 122 could advise the client 
system and the customer of the successful upgrade and payment. The server system 122 could then 
35 terminate the connection to the client system at the "terminate connection to the client" block 830 and 
then could proceed to the "update product information database" block 832 which could allow the 
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collection of marketing data and other information related to the particular product. 

After the termination of the connection to the server system 1 22 at the "terminate connection 
to upgrade server block 630 in Fig. 6, the program will proceed to the "request system restart" block 
632 to reboot the system to initialize all the initialize parameters to be consistent with the upgrade 
5 which has been provided. 

It should be noted that there are a number of advantageous features of the present invention 
which have been described peripherally. For example, this system is capable of tracking thefts of 
individual components in a computer system, preventing forged software from entering the system, 
and providing secure transmittal of financial information. While the invention has been described in 
1 0 conjunction with a specific embodiment, it is to be understood that many alternatives, modifications, 
and variations will be apparent to those skilled in the art in light of the foregoing description. 
Accordingly, it is intended to embrace all such alternatives, modifications, and variations which fall 
within the spirit and scope of the appended claims. 
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We claim: 

1 . Apparatus 1 00, connectable to a communications network 1 1 4, comprising: 

a first computer system 200, 102, 104, 106 connectable to said communications 
network 144 and having a predetermined capability, the predetermined capability being defined by a 
set of parameters maintained within the first computer system; said first computer system including 
5 control means 202, 402 for controlling said predetermined capability; and 

a second computer system 300, 122, 124, 126 connectable to said communications 
network; said second computer system including control means 302, 402 for identifying and 
controlling said first computer system control means through said communications network. 

2. The apparatus as claimed in claim 1 wherein said first computer system includes identifier 
1 0 means for uniquely identifying said first computer system. 

3. The apparatus as claimed in claim 2 wherein said second computer system includes 
authentication means for identifying said identifier means. 

4. The apparatus as claimed in claim 3 wherein said first computer system includes encryption 
means for encrypting said identifier means whereby said unique identification of said first computer 

1 5 system is encrypted; and 

said second computer system includes decryption means for decrypting said encryption 
means encryption of said identifier means whereby said unique identification of said first computer 
system is accomplished across said communications network. 

5. The apparatus as claimed in claim 4 wherein said first computer system includes further 
20 encryption means for further encrypting said encryption means encryption of said identifier means; 

and 

said second computer system includes further decryption means for further decrypting said 
further encrypting means of said first computer system whereby said unique identification of said first 
computer system has at least two levels of encryption.-;. 
25 6. Apparatus 1 00, connectable through a communications network 1 14 lo a server computer 

system 300, 122, 124, 126 having a control mechanism 302, 402 responsive lo signals through said 
communications network 1 14, comprising: 

an identifiable computer system 200, 102, 104, 106 connectable to said 
communications network 1 14; 
30 said identifiable computer system having a predetermined capability; 

said identifiable computer system including control means 202, 402 for controlling 
said predetermined capabilities; and 

said identifiable computer system including signaling means for sending a signal 
through said communications network to said server computer to cause said server computer to 
35 control said identifiable computer system through said communications network. 
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7. The apparatus as claimed in claim 6 wherein said identifiable computer system includes 
identifier means for uniquely identifying said identifiable computer system. 

8. The apparatus as claimed in claim 7 including means for transmitting said identifier means 
unique identification of said identifiable computer system. 

9. The apparatus as claimed in claim 8 includes encryption means for encrypting said 
transmission means transmission of said identifier means. 

1 0. The apparatus as claimed in claim 9 wherein said identifiable computer system includes 
further encryption means for further encrypting said encryption means transmission of said identifier 
means. 

1 1. Apparatus 100, correctable through a communications network 1 14 to a client computer 
system 200, 122, 124, 126 having a predetermined capability and a control mechanism 202, 402 for 
sending a signal through said communications network to request modification to certain of said 
predetermined capability and responsive to a signal through said communications network 1 14 to 
control said predetermined capability, comprising: 

a computer system 300, 122, 124, 126 conneclable to said communications network 

114; 

said computer system having memory means 304 containing information regarding 
said predetermined capability in said client computer system; and 

said computer system responsive to said signal from said client computer requesting 
modification of said predetermined capability to obtain one of said combinations of said 
predetermined capability to provide a control signal through said communications network for said 
client computer to control said predetermined capability in said client computer. 

12. The apparatus as claimed in claim 1 1 wherein said computer system includes identifier 
means for uniquely identifying said control mechanism of said client computer. 

1 3. The apparatus as claimed in claim 12 wherein said computer system includes authentication 
means for identifying said signal from said control mechanism of said client computer. 

1 4. The apparatus as claimed in claim 1 3 wherein said computer system includes decryption 
means for decrypting said signal from said control mechanism of said client computer. 

1 5. The apparatus as claimed in claim 14 wherein said computer system includes further 
decryption means for further decrypting said decryption means. 

1 6. Apparatus 100, collectable to a communications network 1 14, comprising: 

a first computer system 200, 102, 104, 106 connectable to said communications 
network 1 14 and having a predetermined set of capabilities; said first computer system including 
control means 202, 402 in controlling any of said capabilities in said predetermined set of 
capabilities; and 
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a second computer system 300, 122, 124, 126 connectable to said communications 
network 1 14; said second computer system including control means 302, 402 for controlling said first 
computer system control means through said communications network 1 14. 

1 7. Apparatus 1 00, connectable through a communications network 1 14 to a server computer 
system 300, 122, 124, 126 having a control mechanism responsive to signals through said 
communications network, comprising: 

a client computer system 200, 1 02, 104, 1 06 connectable to said communications 

network 1 14; 

said client computer system having a predetermined set of capabilities; 

said client computer system including control means 202, 402 for controlling any of 
said capabilities in said predetermined set of capabilities; and 

said client computer system including signaling means for sending a signal through 
said communications network to said server computer to cause said server computer to control said 
client computer system through said communications network 

1 8. Apparatus 100, connectable through a communications network 1 14 to a client computer 
system 200, 102, 104, 106 having a predetermined set of capabilities and a control mechanism for 
sending a signal through said communications network to request modification to certain of said 
predetermined set of capabilities and responsive to a signal through said communications network to 
control said predetermined set of capabilities, comprising: 

a server computer system 300, 122, 124, 126 connectable to said communications 

network 1 14; 

said server computer system having memory means 304, 404, 406 containing 
information regarding combinations of said predetermined set of capabilities in said client computer 
system; and 

said server computer system responsive to said signal from said client computer 
requesting modification of said predetermined set of capabilities to obtain one of said combinations of 
said predetermined set of capabilities from said memory means to provide a control signal through 
said communications network for said computer system to control said predetermined set of 
capabilities in said client computer. 



WO 97/46932 



PCT/US97/00724 




WO 97/46932 



PCT/US97/00724 



2/8 




FIG. 2 



WO 97/46932 



PCT/US97/00724 



3/8 




FIG. 3 



WO 97/46932 



4/8 



PCT/US97/00724 



400 





404 j 








406 





408 



FIG. 4 




FIG. 6 



INTERNATIONAL SEARCH REPORT 



Int* 'cnal Application No 

PCT/US 97/00724 



A. CLASSIFICATION OF SUBJFXTT MA1TKR 

IPC 6 G06F1/OO G06F9/445 



According to International Patent Classification (IPC) or to both national classification and IPC 



B. FIELDS SEARCHED 



Minimum documentation searched (classification system followed by classification symbols) 

IPC 6 G06F 



Documentation searched other than minimum documentation to the extent that such documents are included in the fields searched 



Electronic data base consulted during the international search (name of data base and. where practical* search terms used) 



C. DOCUMENTS CONSIDERED TO BE RELEVANT 



Category * Citation of document, with indication, where appropriate, of the 



Relevant to claim No. 



WO 96 15485 A (ABSOLUTE SOFTWARE CORP 
;C0TICHINI CHRISTIAN (CA); CAIN FRASER 
(CA)) 23 May 1996 

see page 2, line 14 - page 3, line 25 

see page 5, line 16 - page 6, line 9 
see page 12, line 12 - page 14, line 4; 
figure 1 

WO 92 09160 A (TAU SYSTEMS CORP) 29 May 
1992 

see page 6, line 2 - page 9, line 6; 
claims 1,2,4,27-31; figures 1-4 



EP 0 703 531 A (COMPAQ COMPUTER CORP) 27 
March 1996 

see page 3, line 15-51; figure 1 



1-4,6-9, 
16,17 

5,10,11. 
18 



I, 6,11, 
16-18 
2-5, 
7-10, 
12-15 

II, 18 



□ 



Further documents are listed in the continuation of box C. 



0 



Patent family members are listed in annex. 



* Special categories of a ted documents : 

'A' document defining the general state of the art which is not 
considered to be of particular relevance 

*E" earlier document but p 
filing dale 

"L* document which may throw doubts on pnonty c 

which is cited to establish the publication date of another 
a tan on or other special reason (as specified) 

"O" dcKumcnt referring to an oral disclosure, use, exhibition or 
other means 

"P" document published prior to the international filing date but 
later than the priority date claimed 



"T~ later document published after the international filing date 
or priority date and not in conflict with the application but 
a ted to understand the principle or theory underlying the 
invention 

"X* document of particular relevance; the claimed invention 
cannot be considered novel or cannot be considered to 
involve an inventive step when the document is taken alone 

"Y* document of particular relevance; the claimed invention 
cannot be considered to involve an inventive step when the 
document is combined with one or more other such docu- 
ments, such combination being obvious to a person skilled 
in the art. 

'A' document member of the same patent family 



Date of the actual completion of the international search 



26 May 1997 



Date of mailing of the international search report 



0 5.0 6.9 7 



Name and mailing address of the ISA 

European Patent Office, P.B. 58 18 Patentlaan 2 
NL - 2280 HV Rrjswijk 
Td. ( + 3170) 340-2040, Tx. 31 6SI epo nL 
Fax: ( + 3L70) 340-3016 



Authorized officer 



Moens, R 



Form PCT ISA/2U (second sheet) (July 1993) 



INTERNATIONAL SEARCH REPORT 

information on patent family members 



Inb oral Application No 

PCT/US 97/00724 



Patent document 
cited in search report 



Publication 
dace 



Patent family 
member (s) 



Publication 
date 



WO 9615485 A 



WO 9209160 A 



23-05-96 



AU 3837595 A 



29-05-92 



US 
US 
CA 
EP 
JP 
JP 



5103476 
5222134 
2095723 
0556305 



7089345 B 
6501120 T 



06-06-96 



07- 04-92 
22-06-93 

08- 05-92 
25-08-93 
27-09-95 
27-01-94 



EP 0703531 A 


27-03-96 


US 


5586304 A 


17-12-96 






AU 


3053895 A 


21-03-96 






CA 


2157728 A 


09-03-96 






JP 


8227355 A 


03-09-96 






US 


5588143 A 


24-12-96 



Form PCT/1SA/210 (ptt«it ftraily tnncx) (July 1992) 



